$ rpki-client -vvf rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft File: oiK21tBSghQiHUrOpH4axhHvQno.mft (raw, json) Hash identifier: sNDiecRUmsj7ZLdMG1pce6Fe0UVYTlCeBhISnext7sE= Subject key identifier: 33:C3:EE:C9:35:43:66:13:61:5A:E3:F7:90:34:04:CA:8A:DE:C1:1B Authority key identifier: A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A Certificate issuer: /CN=A911F177/serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Certificate serial: 079F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft Manifest number: 079A Signing time: Wed 02 Jul 2025 21:37:08 +0000 Manifest this update: Wed 02 Jul 2025 21:37:08 +0000 Manifest next update: Wed 09 Jul 2025 21:37:08 +0000 Files and hashes: 1: oiK21tBSghQiHUrOpH4axhHvQno.crl (hash: UdEyz/CqAW/wKWPfM0iMEMh+GgC+h09IWhWc+m17eaA=) 2: 90203ACEDEE811EBA82BEF41C4F9AE02.roa (hash: 90Ps/BWPXZ61HxNbkmbrT/5Kexde1qpWyvX+qPISegQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:37:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1951 (0x79f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F177, serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Validity Not Before: Jul 2 21:37:08 2025 GMT Not After : Jul 9 21:37:08 2025 GMT Subject: CN=6865a684-1846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:58:24:2f:ea:e1:fd:f7:3b:ea:bc:2f:04:f8: b7:b9:a4:47:79:ba:60:ee:24:d9:94:64:37:a5:17: 8b:e5:8a:ec:4e:77:95:03:2c:52:3a:53:e1:e5:bc: 50:52:4e:35:e0:2a:f5:1b:02:53:dd:89:8d:56:46: 9e:20:c9:da:94:8b:fd:6f:2f:28:88:0a:c8:4d:98: 23:d7:02:ab:99:40:34:2e:a0:db:a8:63:6c:c9:3a: a2:cd:cf:75:46:24:27:a0:c0:62:f3:8b:6e:31:94: 38:54:60:8a:5a:4b:68:7d:5d:bf:46:86:f1:55:07: 71:23:d2:40:02:c2:eb:77:40:1a:4b:d6:94:95:04: d5:27:8d:58:0f:9d:79:c5:aa:45:7d:f4:36:e2:2b: 07:33:54:03:c9:4e:76:fe:02:71:ea:c5:39:61:f5: 8f:d4:bf:32:52:ee:ab:3e:9b:32:9d:3a:db:aa:9a: 75:46:61:b9:83:84:16:f9:9b:a2:58:39:c4:90:ce: fb:06:16:fa:d0:f1:03:05:b1:76:41:aa:50:77:e8: 94:cd:0f:d9:91:92:a7:58:40:42:86:07:44:0b:45: 1d:bf:63:c5:64:27:4d:fb:c7:26:35:75:e1:dd:9a: e1:26:30:d5:7f:c8:67:6b:03:27:dd:fe:42:5f:7b: 2d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:C3:EE:C9:35:43:66:13:61:5A:E3:F7:90:34:04:CA:8A:DE:C1:1B X509v3 Authority Key Identifier: keyid:A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:6a:5b:60:0b:1c:d8:b5:5c:b1:09:1e:34:90:c4:a3:90:53: fb:6c:00:59:ac:5b:f4:cb:85:30:fb:bc:8d:79:53:3f:c8:65: 1a:02:0f:d0:5d:9a:57:71:48:b5:de:e4:c0:95:1e:28:c0:8c: b8:64:dc:4e:10:84:2a:c4:02:8b:0f:d8:a7:b9:00:83:09:18: 3e:42:51:6f:40:9a:21:07:d2:7a:14:26:4a:e2:de:9f:fe:92: 03:cb:f5:b1:4a:58:b9:54:e5:6e:10:1c:cc:0f:19:39:47:d1: 77:48:2b:3d:a9:32:6d:01:6b:82:b5:78:2c:49:53:cc:e1:0c: 70:60:a4:bf:fc:df:af:c5:53:5e:77:6b:1c:8b:1c:c8:0e:ea: f4:c9:28:91:88:a1:e4:15:c6:b1:74:a4:4d:72:03:2b:9d:bf: 9f:48:c5:a8:9a:91:ab:c1:86:96:47:dd:04:47:b8:ad:3d:31: 5d:ab:2b:cf:b7:ed:20:cb:1a:6e:ea:db:74:5d:9f:cb:d0:f4: dc:b1:9b:a1:0d:3a:05:73:12:e2:ff:ff:81:1a:3d:b5:11:88: ab:ad:c4:cc:2f:e4:c7:bd:22:02:39:33:71:28:fd:17:07:f0: 9e:ae:63:ad:bb:a5:ca:a7:8f:13:53:81:5c:d6:42:8a:4f:4e: e5:cd:9f:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB58wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYxNzcxMTAvBgNVBAUTKEEyMjJCNkQ2RDA1MjgyMTQyMjFENEFDRUE0N0UxQUM2 MTFFRjQyN0EwHhcNMjUwNzAyMjEzNzA4WhcNMjUwNzA5MjEzNzA4WjAYMRYwFAYD VQQDEw02ODY1YTY4NC0xODQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVgkL+rh/fc76rwvBPi3uaRHebpg7iTZlGQ3pReL5YrsTneVAyxSOlPh5bxQ Uk414Cr1GwJT3YmNVkaeIMnalIv9by8oiArITZgj1wKrmUA0LqDbqGNsyTqizc91 RiQnoMBi84tuMZQ4VGCKWktofV2/RobxVQdxI9JAAsLrd0AaS9aUlQTVJ41YD515 xapFffQ24isHM1QDyU52/gJx6sU5YfWP1L8yUu6rPpsynTrbqpp1RmG5g4QW+Zui WDnEkM77Bhb60PEDBbF2QapQd+iUzQ/ZkZKnWEBChgdEC0Udv2PFZCdN+8cmNXXh 3ZrhJjDVf8hnawMn3f5CX3st7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDPD7sk1 Q2YTYVrj95A0BMqK3sEbMB8GA1UdIwQYMBaAFKIittbQUoIUIh1KzqR+GsYR70J6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjE3Ny84MkVFNTgyNjBF MDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2doUWlIVXJPcEg0YXhoSHZR bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pSzIxdEJTZ2hRaUhVck9wSDRheGhIdlFuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjE3Ny84MkVFNTgyNjBFMDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2do UWlIVXJPcEg0YXhoSHZRbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOaltgCxzYtVyxCR40kMSjkFP7bABZrFv0y4Uw+7yNeVM/yGUaAg/Q XZpXcUi13uTAlR4owIy4ZNxOEIQqxAKLD9inuQCDCRg+QlFvQJohB9J6FCZK4t6f /pIDy/WxSli5VOVuEBzMDxk5R9F3SCs9qTJtAWuCtXgsSVPM4QxwYKS//N+vxVNe d2scixzIDur0ySiRiKHkFcaxdKRNcgMrnb+fSMWompGrwYaWR90ER7itPTFdqyvP t+0gyxpu6tt0XZ/L0PTcsZuhDToFcxLi//+BGj21EYirrcTML+THvSICOTNxKP0X B/CermOtu6XKp48TU4Fc1kKKT07lzZ9q -----END CERTIFICATE-----Generated at Thu Jul 3 06:12:07 2025 by rpki-client